Skip to content
Security Assessments & Penetration Testing

Find vulnerabilities,
before attackers do.

NIS2 makes regular security testing mandatory. We systematically test your Azure, Entra ID and Active Directory environment for vulnerabilities and deliver prioritised action plans for auditors and management.

Request Security Assessment Our Approach

Your Attack Surface at a Glance

A security assessment covers all relevant attack vectors: from cloud configurations through identities to the network.

Identity & AD

Entra ID, Active Directory, Kerberos, NTLM

Attacker

Cloud & Azure

Configuration, Storage, Policies, RBAC

Network

External & internal, firewall, segmentation

Applications

Services, APIs, vulnerability scan

Scope and depth of the assessment are defined together with you.

What Happens Without Assessment

Untested environments are not secure — their risk is simply unknown.

Undetected Misconfigurations

Azure resources with public access, overprivileged service accounts and open storage accounts remain undetected for months.

Weak Active Directory Structures

Kerberoasting, Pass-the-Hash and uncontrolled delegation allow attackers to achieve full domain compromise.

Compliance Without Evidence

NIS2, ISO 27001 and BSI IT-Grundschutz require security evidence. Without regular tests, documentation for auditors and insurers is missing.

Delayed Detection

Without testing, there is no knowledge of attack vectors. Breaches remain undetected for an average of 197 days.

Lateral Movement Unhindered

Without segmentation review and network testing, it is unclear how far an attacker can advance after a successful initial foothold.

Cyber Insurance at Risk

Many insurers require penetration test evidence. Without it, benefit exclusions are at risk in the event of a claim.

What We Test

Six assessment types, tailored to the Microsoft stack and the requirements of mid-market organisations.

Azure & Cloud Configuration Analysis

CLOUD AUDIT

  • Systematic review of all Azure resources against CIS Benchmarks and Microsoft Security Baseline
  • Identification of misconfigurations, overprivileged identities and exposed attack surfaces
  • Assessment against Azure Policy and regulatory compliance requirements (NIS2, ISO 27001)
  • Prioritised action plan with effort estimates and risk ratings

CIS BENCHMARKS . MICROSOFT SECURITY BASELINE . AZURE POLICY

Entra ID & Active Directory Assessment

IDENTITY & ACCESS

  • Analysis of identities, permissions and delegation in Entra ID and Active Directory
  • Detection of Kerberoasting vulnerability, Pass-the-Hash vectors and uncontrolled GPOs
  • Assessment of privileged accounts, PIM configuration and Conditional Access Policies
  • Identification of critical paths to domain compromise

ENTRA ID . ACTIVE DIRECTORY . KERBEROS . NTLM

Network Penetration Test

EXTERNAL & INTERNAL

  • External attack simulation: scope definition, reconnaissance and exploitation of public services
  • Internal network test: lateral movement, network segmentation and firewall rules
  • Assessment of VPN access, remote desktop services and VNet peering configurations
  • Documentation of all findings with reproduction steps and CVSS rating

RECONNAISSANCE . EXPLOITATION . LATERAL MOVEMENT

Vulnerability Assessment

VULNERABILITY SCAN

  • Automated vulnerability scan as a baseline across all systems and services
  • Manual verification and prioritisation by CVSS score and actual exploitability
  • Assessment of patch status, known CVEs and zero-day exposure
  • Regular repetition as continuous security evidence

CVSS . AUTOMATED . MANUALLY VERIFIED

Red Team / Simulated Attack

ATTACK SIMULATION

  • Targeted attack simulation with defined objectives: data exfiltration or privilege escalation
  • Realistic attack scenarios including social engineering and phishing components
  • Combination of technical attack vectors and human factors
  • Evidence of real-world impact for management, CISO and insurers

PRIVILEGE ESCALATION . DATA EXFILTRATION . SOCIAL ENGINEERING

Reporting & Action Plan

DOCUMENTATION

  • Management summary for leadership, auditors and regulatory authorities
  • Technical report with CVSS-rated findings and reproduction steps
  • Prioritised action plan with effort estimates and quick wins
  • Direct compliance mapping to NIS2, ISO 27001, BSI IT-Grundschutz and DORA

MANAGEMENT SUMMARY . CVSS RATING . ACTION PLAN

Your Path to Assessment

Four phases, clearly structured. From the first conversation to the audit-ready report.

  1. 01

    Scope & Planning

    1 Week
    • Alignment of test objectives and scope definition
    • Clarification of legal framework and rules of engagement
    • Technical preparation and credentials for white-box assessments
    • Result: Clear test plan, no unexpected interruptions
  2. 02

    Reconnaissance & Assessment

    1-2 Weeks
    • Automated vulnerability scans as a baseline
    • Manual review of Entra ID, Azure configuration and AD structure
    • Network assessment: external and internal, passive and active
    • Result: Complete picture of the attack surface
  3. 03

    Exploitation & Verification

    1-2 Weeks
    • Controlled exploitation of identified vulnerabilities for evidence collection
    • Privilege escalation and lateral movement up to the defined test objective
    • Documentation of all findings with reproduction steps
    • Result: Reliable evidence, no speculative findings
  4. 04

    Reporting & Handover

    1 Week
    • Management summary for leadership and auditors
    • Technical report with CVSS-rated findings
    • Prioritised action plan with effort estimates and quick wins
    • Result: Complete documentation for compliance and implementation

Approximately 4-6 weeks from first conversation to delivered report

Each phase delivers standalone value and can be booked separately.

Request Security Assessment

What changes for your organisation

Without Assessment
Vulnerabilities remain undetected for years until an attacker finds them
Compliance audit without test evidence: auditors require evidence, not assumptions
No knowledge of lateral movement: how far can an attacker advance after initial access?
Cyber insurance may deny claims in the event of a loss
Management liability without documented security measures (NIS2)
With Assessment
All critical vulnerabilities known, prioritised and addressed before attackers can exploit them
Prioritised action plan and management summary for auditors and insurers
Concrete evidence: where attackers can penetrate and how far they could reach
Insurance-relevant documentation is available
NIS2/ISO 27001 compliance evidence secured through recurring tests

Why Wenske Cyber Solutions

Microsoft Stack Specialists

We test the environments we secure every day: Azure, Entra ID, Active Directory, Microsoft 365. No generic web app tests.

White-Box and Black-Box

Assessment depth tailored to your needs. From a quick configuration analysis to a full red team engagement.

Reports That Drive Action

Management summary for leadership, technical report for your IT team, prioritised action plan for implementation.

Compliance Mapping

All findings directly mapped to NIS2, ISO 27001, BSI IT-Grundschutz and DORA. The report is audit-ready.

Free & non-binding

Ready for Clarity?

In a free initial consultation, we define the scope together and show you which assessment depth makes sense for your environment.

Request Security Assessment

No obligation. No sales pitch. Just clarity.